WordPress graafikoille: Osa2 – asennus ja tietoturva « Löyly

WordPress graafikoille: Osa2 – asennus ja tietoturva

2.12.2010 | WordPress graafikoille | jukka

Tässä sarjassa on nyt vähän kestänyt, olen tässä välissä ollut isyyslomalla ja muutenkin aika kiireinen. Mutta nyt jatketaan. Asennus on dokumentoitu erittäin hyvin virallisella sivulla, mutta haluaisin tässä käsitellä muutamaa tietoturvaa parantavaa pikkuseikkaa, jotka kannattaa huomioida asennusvaiheessa. Osaa näistä ei pysty tekemään, jos WP:n asentaa jonkun hallintapaneelin (kuten cPanel) kautta. Joten suosittelen asentamaan sen näin käsin, koska se ei ole iso hanke. Aloitetaan! Ensin ladataan uusin paketti osoitteesta http://fi.wordpress.org/. Tällä hetkellä se on 3.0.2. Sivulla on seuraavanlaiset asennusohjeet:

Asennus

Pura tiedostot tyhjään kansioon.
Avaa wp-config-sample.php -tiedosto tekstieditorissa (esimerkiksi WordPad) ja täydennä tietokantayhteyden asetukset.
Talleta tiedostoksi wp-config.php
Siirrä kaikki tiedostot palvelimelle.
Avaa /wp-admin/install.php selaimessa. Tämän tulisi alustaa blogisi tarvitsemat taulut tietokantaan. Jos asennuksen aikana tapahtuu virhe, tarkista wp-config.php -tiedosto ja yritä uudelleen. Jos virhe toistuu, kirjoita tukikeskustelupalstalle mahdollisimman yksityiskohtainen kuvaus ongelmasta.
Muista ohjelman antama salasana.
Asennusohjelmasta siirryt kirjautumissivulle. Kirjaudu tunnukselle admin käyttämällä salasanaa, joka generoitiin asennuksen lopussa. Voit vaihtaa salasanan Käyttäjät-valikossa.

Me seuraamme tätä asennusta, mutta teemme asennuksen hiukan erilailla. Ensinnäkin laitamme wordpressin omaan kansioonsa esim. wordpress. Tämä ei auta tietoturvassa (eikä kansion nimen tarvitse olla kryptinen), sillä kansion osoite näkyy esim. kuvissa, mutta tämä auttaa pitämään web-hotellin juuren puhtaana. Muutamalla pikkumuutoksella saamme sivuston toimimaan suoraan web-hotellin juuressa. Tämä askel on toki täysin vapaaehtoinen, mutta selkeä ja hyvin järjestelty on aina parempi.

Tässä vaiheessa tietokannan pitäisi jo olla luotu, ei kuitenkaan käydä sen luomista läpi tässä. Ilman tietokantaa ei mitään tapahdu. Tietokannan salasana (kuten kaikki muutkin salasanat) kannattaa olla pitkä ja luotu satunnaisesti (esim. täällä). Sitten avataan wp-config-sample.php ohjeiden mukaisesti. Riveille 19-34 tulee normaalisti tietokannan tiedot. Riveille 45-52 laitamme uniikit avaimet, jotka voidaan generoida tiedoston kommenttien mukaisesti osoitteessa https://api.wordpress.org/secret-key/1.1/salt/. Nämä vaihdetaan olemassa olevien rivien tilalle. Sitten siirrytään ensimmäiseen ekstrakohtaan. Rivillä 63 on WP:n tietokantataulukoiden etuliite. Tämä kannattaa vaihtaa, koska se vaikeuttaa hakkereiden pääsyä tietokantaan. Näin ainakin olen asiaa tutkiessani lukenut, ei siitä ainakaan voi haittaa olla.

Nyt olemmekin valmiita wp-configin kanssa. Poistetaan tiedoston nimestä -sample lopusta ja tallennetaan. Nyt mennään osoitteeseen sivusto.fi/wordpress/wp-admin/install.php , ja jos et laittanut wordpressiä omaan kansioonsa, niin jätä tuo wordpress välistä pois. Tällä sivulla kannattaa pääkäyttäjäksi ehdottomasti laittaa joku muu nimi kuin admin. Tällä tavoin vaikeutetaan hakkerointia huomattavasti, kun hakkerin pitää arvata salasanan lisäksi myös käyttäjätunnus.

Nyt sivusto on valmis! Vielä muutamia tietoturvaviilauksia, vaikka WP onkin tietoturvaltaan hyvä. Muutetaan wp-config.php:n oikeudet niin pieniksi kuin mahdollista (minun tapauksessa chmod 400 vielä toimii), jotta kukaan muu jaetulla palvelimella ei pääse lukemaan tietokannan tunnusta ja salasanaa. Netissä on paljon tietoa siitä, miten tiedostojen oikeuksia muutetaan, jos se ei ole vielä tuttua. Tarkasta myös, ettei minkään kansion oikeudet ole 777, yleisesti ottaen kansioille 755 ja tiedostoille 644 on hyvät oikeudet, jos ne ei aiheuta ongelmia. Jos ongelmia ilmenee, kannattaa olla yhteydessä web-hotellin ylläpitäjään.

Lisäksi wp-admin-kansio kannattaa salasanasuojata, jos se ei aiheuta ongelmia käytössä (esim. Ajax-handler ei pääse tiedostoihin käsiksi). Jos johonkin tiedostoon pitää päästä käsiksi ilman salasanaa, voi sen tehdä näiden ohjeiden mukaan. Seuraavaksi poistetaan wp-admin/install.php ja /wp-admin/upgrade.php, joita ei enää asennuksen jälkeen tarvita.

Sitten luodaan juureen .htaccess-tiedosto, johon tulee seuraavat rivit: Options -Indexes DirectoryIndex index.php index.html Order Deny,Allow Deny from all kansion wp-admin voi suojata salasanan lisäksi myös niin, että sinne pääsee vain Suomesta lisäämällä seuraava rimpsu wp-admin-kansion .htaccess-tiedostoon: (tämä toimii ainakin pikaisen testin perusteella, tosin sivuja ei sitten pysty päivittämään ulkomailta)

order deny,allow

# Country: FINLAND

# ISO Code: FI

# Total Networks: 707

# Total Subnets: 9,328,000

allow from 46.17.192.0/21

allow from 46.30.128.0/21

allow from 46.58.0.0/17

allow from 46.132.0.0/16

allow from 46.182.112.0/21

allow from 46.182.160.0/21

allow from 62.44.192.0/18

allow from 62.61.64.0/18

allow from 62.71.0.0/16

allow from 62.72.224.0/19

allow from 62.73.32.0/19

allow from 62.78.96.0/19

allow from 62.78.128.0/17

allow from 62.80.128.0/19

allow from 62.106.0.0/18

allow from 62.113.160.0/19

allow from 62.121.32.0/19

allow from 62.142.0.0/16

allow from 62.145.160.0/19

allow from 62.148.96.0/19

allow from 62.148.192.0/19

allow from 62.165.128.0/19

allow from 62.165.160.0/19

allow from 62.176.32.0/19

allow from 62.183.128.0/17

allow from 62.197.160.0/19

allow from 62.204.0.0/19

allow from 62.216.96.0/19

allow from 62.220.224.0/19

allow from 62.236.0.0/16

allow from 62.237.0.0/16

allow from 62.240.64.0/19

allow from 62.241.192.0/18

allow from 62.248.128.0/17

allow from 77.72.56.0/21

allow from 77.86.128.0/17

allow from 77.91.208.0/21

allow from 77.95.144.0/21

allow from 77.95.240.0/21

allow from 77.105.64.0/18

allow from 77.109.192.0/18

allow from 77.223.32.0/19

allow from 77.234.96.0/19

allow from 77.240.16.0/20

allow from 77.246.192.0/20

allow from 78.27.64.0/18

allow from 79.99.152.0/21

allow from 79.133.0.0/19

allow from 79.134.96.0/19

allow from 79.141.144.0/20

allow from 79.171.224.0/21

allow from 79.171.232.0/21

allow from 80.64.0.0/20

allow from 80.66.160.0/20

allow from 80.69.160.0/20

allow from 80.71.192.0/20

allow from 80.74.192.0/20

allow from 80.74.208.0/20

allow from 80.75.96.0/20

allow from 80.81.160.0/20

allow from 80.81.176.0/20

allow from 80.83.0.0/20

allow from 80.88.176.0/20

allow from 80.95.128.0/20

allow from 80.186.0.0/16

allow from 80.220.0.0/14

allow from 80.242.16.0/20

allow from 80.246.144.0/20

allow from 80.246.160.0/20

allow from 80.247.240.0/20

allow from 80.248.96.0/20

allow from 80.248.112.0/20

allow from 80.248.160.0/20

allow from 80.248.240.0/20

allow from 81.16.64.0/20

allow from 81.17.192.0/20

allow from 81.19.112.0/20

allow from 81.20.224.0/20

allow from 81.22.160.0/20

allow from 81.22.240.0/20

allow from 81.29.128.0/20

allow from 81.31.48.0/20

allow from 81.90.64.0/20

allow from 81.175.128.0/17

allow from 81.197.0.0/16

allow from 81.209.0.0/17

allow from 82.103.192.0/18

allow from 82.116.224.0/19

allow from 82.118.192.0/19

allow from 82.128.128.0/17

allow from 82.130.0.0/18

allow from 82.133.128.0/17

allow from 82.138.128.0/18

allow from 82.141.64.0/18

allow from 82.181.0.0/16

allow from 82.195.192.0/19

allow from 82.197.0.0/19

allow from 82.199.160.0/19

allow from 82.199.224.0/19

allow from 82.203.128.0/17

allow from 82.215.192.0/18

allow from 83.100.0.0/17

allow from 83.102.0.0/17

allow from 83.136.248.0/21

allow from 83.142.72.0/21

allow from 83.143.56.0/21

allow from 83.143.88.0/21

allow from 83.143.216.0/21

allow from 83.145.192.0/18

allow from 83.146.128.0/18

allow from 83.146.192.0/18

allow from 83.148.192.0/18

allow from 83.150.64.0/18

allow from 83.216.0.0/19

allow from 83.245.128.0/17

allow from 84.20.128.0/19

allow from 84.34.0.0/16

allow from 84.230.0.0/15

allow from 84.234.64.0/20

allow from 84.239.128.0/17

allow from 84.240.64.0/18

allow from 84.248.0.0/14

allow from 84.253.192.0/18

allow from 85.23.0.0/16

allow from 85.29.64.0/18

allow from 85.76.0.0/14

allow from 85.131.0.0/17

allow from 85.134.0.0/17

allow from 85.156.0.0/16

allow from 85.157.0.0/16

allow from 85.188.0.0/18

allow from 85.194.192.0/18

allow from 85.217.0.0/17

allow from 86.50.0.0/16

allow from 86.60.128.0/17

allow from 86.114.0.0/15

allow from 87.92.0.0/14

allow from 87.100.128.0/17

allow from 87.108.0.0/16

allow from 87.236.152.0/21

allow from 87.236.168.0/21

allow from 87.236.224.0/21

allow from 87.239.120.0/21

allow from 87.254.192.0/19

allow from 88.85.128.0/19

allow from 88.86.128.0/19

allow from 88.112.0.0/15

allow from 88.114.0.0/15

allow from 88.148.128.0/17

allow from 88.192.0.0/14

allow from 89.17.64.0/19

allow from 89.18.224.0/19

allow from 89.27.0.0/17

allow from 89.106.32.0/19

allow from 89.166.0.0/17

allow from 89.190.0.0/19

allow from 89.200.192.0/21

allow from 89.207.8.0/21

allow from 89.236.64.0/18

allow from 89.250.48.0/20

allow from 91.90.48.0/21

allow from 91.123.128.0/20

allow from 91.133.0.0/16

allow from 91.145.64.0/18

allow from 91.150.0.0/18

allow from 91.152.0.0/13

allow from 91.189.208.0/21

allow from 91.190.192.0/21

allow from 91.194.20.0/23

allow from 91.197.84.0/22

allow from 91.197.208.0/22

allow from 91.198.120.0/24

allow from 91.199.148.0/24

allow from 91.202.112.0/22

allow from 91.209.29.0/24

allow from 91.213.97.0/24

allow from 91.213.161.0/24

allow from 91.214.164.0/22

allow from 91.215.132.0/22

allow from 91.216.77.0/24

allow from 91.216.136.0/24

allow from 91.217.116.0/23

allow from 91.217.211.0/24

allow from 91.217.248.0/24

allow from 91.217.252.0/24

allow from 91.219.172.0/22

allow from 92.242.160.0/19

allow from 93.90.48.0/20

allow from 93.91.176.0/20

allow from 93.106.0.0/16

allow from 93.174.192.0/21

allow from 93.183.0.0/18

allow from 93.190.32.0/21

allow from 93.190.96.0/21

allow from 93.191.120.0/21

allow from 94.22.0.0/16

allow from 94.101.0.0/20

allow from 94.126.160.0/21

allow from 94.199.56.0/21

allow from 94.199.112.0/21

allow from 94.237.0.0/17

allow from 95.130.24.0/21

allow from 95.175.96.0/19

allow from 109.68.128.0/21

allow from 109.68.248.0/21

allow from 109.69.32.0/21

allow from 109.69.120.0/21

allow from 109.70.160.0/21

allow from 109.70.176.0/21

allow from 109.75.224.0/20

allow from 109.108.0.0/19

allow from 109.204.128.0/17

allow from 109.205.96.0/21

allow from 109.232.80.0/21

allow from 109.234.240.0/21

allow from 109.240.0.0/16

allow from 145.247.0.0/16

allow from 151.105.0.0/16

allow from 178.16.176.0/20

allow from 178.21.192.0/21

allow from 178.55.0.0/16

allow from 178.75.128.0/18

allow from 178.213.232.0/21

allow from 178.217.128.0/21

allow from 178.239.192.0/20

allow from 178.251.56.0/21

allow from 178.251.144.0/21

allow from 178.251.152.0/21

allow from 188.64.0.0/21

allow from 188.65.136.0/21

allow from 188.94.64.0/21

allow from 188.117.0.0/18

allow from 188.123.0.0/19

allow from 188.127.192.0/19

allow from 192.89.0.0/16

allow from 192.130.0.0/16

allow from 192.194.0.0/16

allow from 193.17.231.0/24

allow from 193.19.136.0/22

allow from 193.22.86.0/24

allow from 193.28.203.0/24

allow from 193.34.40.0/22

allow from 193.64.0.0/15

allow from 193.66.0.0/16

allow from 193.93.132.0/22

allow from 193.93.136.0/22

allow from 193.94.0.0/16

allow from 193.104.38.0/24

allow from 193.104.188.0/24

allow from 193.105.76.0/24

allow from 193.105.97.0/24

allow from 193.105.123.0/24

allow from 193.105.160.0/24

allow from 193.106.8.0/22

allow from 193.110.224.0/22

allow from 193.111.45.0/24

allow from 193.111.93.0/24

allow from 193.111.118.0/23

allow from 193.138.126.0/24

allow from 193.138.200.0/22

allow from 193.142.1.0/24

allow from 193.142.2.0/24

allow from 193.142.3.0/24

allow from 193.142.4.0/24

allow from 193.142.5.0/24

allow from 193.142.6.0/24

allow from 193.142.7.0/24

allow from 193.142.8.0/21

allow from 193.142.16.0/23

allow from 193.142.18.0/24

allow from 193.142.19.0/24

allow from 193.142.20.0/24

allow from 193.142.21.0/23

allow from 193.142.23.0/24

allow from 193.142.24.0/23

allow from 193.142.26.0/24

allow from 193.142.27.0/24

allow from 193.142.28.0/24

allow from 193.142.29.0/24

allow from 193.142.31.0/24

allow from 193.142.32.0/21

allow from 193.142.47.0/23

allow from 193.142.49.0/24

allow from 193.142.50.0/24

allow from 193.142.51.0/24

allow from 193.142.52.0/24

allow from 193.142.54.0/24

allow from 193.142.55.0/24

allow from 193.142.58.0/24

allow from 193.142.59.0/24

allow from 193.142.60.0/24

allow from 193.142.63.0/24

allow from 193.142.64.0/19

allow from 193.142.96.0/24

allow from 193.142.98.0/24

allow from 193.142.99.0/24

allow from 193.142.101.0/24

allow from 193.142.102.0/24

allow from 193.142.104.0/22

allow from 193.142.114.0/24

allow from 193.142.120.0/24

allow from 193.142.121.0/24

allow from 193.142.122.0/24

allow from 193.142.123.0/24

allow from 193.142.126.0/24

allow from 193.142.128.0/21

allow from 193.142.136.0/24

allow from 193.142.137.0/24

allow from 193.142.138.0/22

allow from 193.142.142.0/23

allow from 193.142.144.0/24

allow from 193.142.146.0/24

allow from 193.142.147.0/24

allow from 193.142.148.0/24

allow from 193.142.150.0/24

allow from 193.142.152.0/24

allow from 193.142.154.0/24

allow from 193.142.155.0/24

allow from 193.142.156.0/24

allow from 193.142.160.0/20

allow from 193.142.176.0/21

allow from 193.142.188.0/22

allow from 193.142.192.0/24

allow from 193.142.193.0/24

allow from 193.142.194.0/24

allow from 193.142.195.0/24

allow from 193.142.196.0/24

allow from 193.142.197.0/24

allow from 193.142.198.0/22

allow from 193.142.202.0/23

allow from 193.142.204.0/24

allow from 193.142.205.0/24

allow from 193.142.206.0/24

allow from 193.142.207.0/24

allow from 193.142.224.0/21

allow from 193.142.232.0/24

allow from 193.142.233.0/24

allow from 193.142.234.0/24

allow from 193.142.235.0/22

allow from 193.142.239.0/24

allow from 193.142.240.0/24

allow from 193.142.241.0/24

allow from 193.142.242.0/24

allow from 193.142.246.0/24

allow from 193.142.247.0/24

allow from 193.142.248.0/23

allow from 193.142.250.0/24

allow from 193.142.251.0/23

allow from 193.142.253.0/23

allow from 193.142.255.0/24

allow from 193.143.1.0/23

allow from 193.143.3.0/24

allow from 193.143.4.0/23

allow from 193.143.6.0/24

allow from 193.143.7.0/24

allow from 193.143.8.0/21

allow from 193.143.16.0/24

allow from 193.143.17.0/24

allow from 193.143.18.0/24

allow from 193.143.19.0/24

allow from 193.143.20.0/24

allow from 193.143.21.0/24

allow from 193.143.22.0/23

allow from 193.143.24.0/21

allow from 193.143.32.0/19

allow from 193.143.64.0/24

allow from 193.143.65.0/24

allow from 193.143.66.0/24

allow from 193.143.67.0/24

allow from 193.143.68.0/24

allow from 193.143.69.0/24

allow from 193.143.70.0/23

allow from 193.143.72.0/24

allow from 193.143.73.0/24

allow from 193.143.74.0/24

allow from 193.143.75.0/24

allow from 193.143.76.0/24

allow from 193.143.78.0/24

allow from 193.143.79.0/24

allow from 193.143.80.0/24

allow from 193.143.81.0/24

allow from 193.143.82.0/24

allow from 193.143.83.0/23

allow from 193.143.85.0/24

allow from 193.143.86.0/24

allow from 193.143.87.0/24

allow from 193.143.88.0/24

allow from 193.143.89.0/24

allow from 193.143.90.0/24

allow from 193.143.91.0/24

allow from 193.143.92.0/24

allow from 193.143.93.0/24

allow from 193.143.94.0/24

allow from 193.143.95.0/24

allow from 193.143.96.0/24

allow from 193.143.97.0/24

allow from 193.143.99.0/20

allow from 193.143.123.0/24

allow from 193.143.124.0/24

allow from 193.143.125.0/24

allow from 193.143.126.0/24

allow from 193.143.127.0/24

allow from 193.143.128.0/21

allow from 193.143.142.0/24

allow from 193.143.143.0/24

allow from 193.143.144.0/24

allow from 193.143.145.0/24

allow from 193.143.146.0/24

allow from 193.143.147.0/24

allow from 193.143.148.0/24

allow from 193.143.149.0/24

allow from 193.143.150.0/24

allow from 193.143.151.0/24

allow from 193.143.152.0/24

allow from 193.143.153.0/24

allow from 193.143.154.0/24

allow from 193.143.155.0/24

allow from 193.143.156.0/24

allow from 193.143.157.0/24

allow from 193.143.158.0/24

allow from 193.143.159.0/24

allow from 193.143.160.0/24

allow from 193.143.161.0/20

allow from 193.143.191.0/24

allow from 193.143.192.0/19

allow from 193.143.224.0/24

allow from 193.143.225.0/24

allow from 193.143.227.0/24

allow from 193.143.228.0/24

allow from 193.143.229.0/24

allow from 193.143.230.0/24

allow from 193.143.231.0/24

allow from 193.143.232.0/21

allow from 193.143.240.0/21

allow from 193.143.248.0/24

allow from 193.143.250.0/24

allow from 193.143.251.0/24

allow from 193.143.252.0/24

allow from 193.143.253.0/24

allow from 193.143.254.0/24

allow from 193.143.255.0/24

allow from 193.166.0.0/16

allow from 193.167.0.0/16

allow from 193.169.84.0/23

allow from 193.169.100.0/23

allow from 193.178.133.0/24

allow from 193.184.0.0/16

allow from 193.185.0.0/16

allow from 193.199.0.0/16

allow from 193.201.144.128/25

allow from 193.201.145.0/25

allow from 193.201.150.64/26

allow from 193.201.150.128/26

allow from 193.201.159.0/25

allow from 193.208.0.0/16

allow from 193.209.0.0/16

allow from 193.210.0.0/16

allow from 193.211.0.0/16

allow from 193.222.133.0/24

allow from 193.229.0.0/19

allow from 193.229.32.0/21

allow from 193.229.40.0/21

allow from 193.229.48.0/21

allow from 193.229.56.0/21

allow from 193.229.64.0/18

allow from 193.229.128.0/17

allow from 193.238.4.0/22

allow from 193.242.126.0/24

allow from 194.0.80.0/22

allow from 194.8.226.0/23

allow from 194.9.240.0/20

allow from 194.28.0.0/22

allow from 194.29.192.0/21

allow from 194.42.56.0/21

allow from 194.50.168.0/24

allow from 194.79.16.0/22

allow from 194.86.0.0/16

allow from 194.89.0.0/16

allow from 194.100.0.0/19

allow from 194.100.32.0/21

allow from 194.100.40.0/21

allow from 194.100.48.0/20

allow from 194.100.64.0/18

allow from 194.100.128.0/17

allow from 194.110.1.0/24

allow from 194.110.2.0/24

allow from 194.110.3.0/24

allow from 194.110.4.0/24

allow from 194.110.5.0/24

allow from 194.110.6.0/24

allow from 194.110.7.0/24

allow from 194.110.8.0/22

allow from 194.110.12.0/24

allow from 194.110.13.0/24

allow from 194.110.14.0/24

allow from 194.110.15.0/24

allow from 194.110.16.0/24

allow from 194.110.17.0/24

allow from 194.110.19.0/24

allow from 194.110.20.0/24

allow from 194.110.21.0/24

allow from 194.110.22.0/24

allow from 194.110.23.0/24

allow from 194.110.24.0/24

allow from 194.110.27.0/24

allow from 194.110.29.0/24

allow from 194.110.30.0/24

allow from 194.110.31.0/24

allow from 194.110.32.0/24

allow from 194.110.33.0/24

allow from 194.110.34.0/24

allow from 194.110.35.0/24

allow from 194.110.36.0/24

allow from 194.110.37.0/24

allow from 194.110.38.0/24

allow from 194.110.39.0/24

allow from 194.110.40.0/24

allow from 194.110.41.0/24

allow from 194.110.42.0/24

allow from 194.110.43.0/24

allow from 194.110.44.0/24

allow from 194.110.45.0/24

allow from 194.110.46.0/24

allow from 194.110.47.0/24

allow from 194.110.48.0/21

allow from 194.110.60.0/23

allow from 194.110.62.0/23

allow from 194.110.64.0/23

allow from 194.110.80.0/24

allow from 194.110.81.0/24

allow from 194.110.82.0/24

allow from 194.110.83.0/24

allow from 194.110.84.0/23

allow from 194.110.86.0/24

allow from 194.110.87.0/24

allow from 194.110.88.0/22

allow from 194.110.92.0/23

allow from 194.110.94.0/24

allow from 194.110.95.0/24

allow from 194.110.96.0/20

allow from 194.110.112.0/24

allow from 194.110.113.0/24

allow from 194.110.114.0/24

allow from 194.110.115.0/24

allow from 194.110.117.0/24

allow from 194.110.118.0/24

allow from 194.110.119.0/24

allow from 194.110.120.0/23

allow from 194.110.122.0/23

allow from 194.110.124.0/24

allow from 194.110.125.0/24

allow from 194.110.130.0/24

allow from 194.110.131.0/24

allow from 194.110.132.0/24

allow from 194.110.134.0/24

allow from 194.110.135.0/24

allow from 194.110.137.0/24

allow from 194.110.138.0/24

allow from 194.110.139.0/24

allow from 194.110.140.0/24

allow from 194.110.141.0/24

allow from 194.110.142.0/24

allow from 194.110.143.0/24

allow from 194.110.144.0/24

allow from 194.110.145.0/24

allow from 194.110.146.0/24

allow from 194.110.147.0/24

allow from 194.110.148.0/24

allow from 194.110.149.0/24

allow from 194.110.152.0/21

allow from 194.110.168.0/21

allow from 194.110.176.0/20

allow from 194.110.224.0/24

allow from 194.110.225.0/24

allow from 194.110.226.0/24

allow from 194.110.227.0/24

allow from 194.110.228.0/24

allow from 194.110.229.0/24

allow from 194.110.230.0/24

allow from 194.110.231.0/24

allow from 194.110.232.0/24

allow from 194.110.233.0/24

allow from 194.110.234.0/24

allow from 194.110.235.0/24

allow from 194.111.0.0/16

allow from 194.112.0.0/20

allow from 194.126.212.0/24

allow from 194.136.0.0/16

allow from 194.137.0.0/16

allow from 194.142.0.0/16

allow from 194.145.32.0/20

allow from 194.152.58.0/23

allow from 194.157.0.0/16

allow from 194.176.103.0/24

allow from 194.187.212.0/22

allow from 194.188.0.0/16

allow from 194.197.0.0/16

allow from 194.211.0.0/16

allow from 194.215.0.0/16

allow from 194.240.0.0/16

allow from 194.241.0.0/16

allow from 194.251.0.0/16

allow from 194.252.0.0/16

allow from 195.8.54.0/23

allow from 195.8.60.0/23

allow from 195.10.128.0/19

allow from 195.10.160.0/19

allow from 195.14.15.0/24

allow from 195.16.192.0/19

allow from 195.20.16.0/22

allow from 195.20.116.0/23

allow from 195.60.90.0/25

allow from 195.60.252.0/22

allow from 195.74.0.0/19

allow from 195.78.70.0/23

allow from 195.94.96.0/19

allow from 195.95.208.0/23

allow from 195.134.224.0/19

allow from 195.138.213.0/24

allow from 195.140.192.0/22

allow from 195.148.0.0/16

allow from 195.149.83.0/24

allow from 195.156.0.0/16

allow from 195.165.0.0/16

allow from 195.170.128.0/19

allow from 195.191.122.0/23

allow from 195.197.0.0/16

allow from 195.200.68.0/23

allow from 195.211.16.0/22

allow from 195.218.64.0/19

allow from 195.226.202.0/24

allow from 195.234.135.0/24

allow from 195.234.142.0/24

allow from 195.234.196.0/22

allow from 195.236.0.0/16

allow from 195.237.0.0/16

allow from 195.238.124.0/22

allow from 195.238.192.0/19

allow from 195.242.216.0/22

allow from 195.244.64.0/19

allow from 195.245.110.0/23

allow from 195.248.86.0/24

allow from 195.255.0.0/19

allow from 195.255.32.0/19

allow from 195.255.64.0/19

allow from 195.255.96.0/19

allow from 195.255.128.0/17

allow from 212.16.96.0/19

allow from 212.17.160.0/19

allow from 212.38.224.0/19

allow from 212.50.128.0/19

allow from 212.50.192.0/19

allow from 212.54.0.0/19

allow from 212.63.0.0/19

allow from 212.66.192.0/19

allow from 212.68.0.0/19

allow from 212.83.96.0/19

allow from 212.86.0.0/19

allow from 212.90.64.0/19

allow from 212.94.64.0/19

allow from 212.116.32.0/19

allow from 212.146.0.0/18

allow from 212.149.64.0/18

allow from 212.149.128.0/17

allow from 212.182.192.0/18

allow from 212.213.0.0/16

allow from 212.226.0.0/16

allow from 212.246.0.0/16

allow from 213.28.0.0/16

allow from 213.130.224.0/19

allow from 213.138.128.0/19

allow from 213.139.160.0/19

allow from 213.140.160.0/19

allow from 213.141.96.0/19

allow from 213.143.160.0/19

allow from 213.145.192.0/19

allow from 213.157.64.0/19

allow from 213.161.32.0/19

allow from 213.169.0.0/19

allow from 213.173.128.0/19

allow from 213.185.32.0/19

allow from 213.186.224.0/19

allow from 213.192.128.0/18

allow from 213.204.32.0/19

allow from 213.214.128.0/18

allow from 213.216.192.0/18

allow from 213.243.128.0/18

allow from 213.250.64.0/18

allow from 213.255.160.0/19

allow from 217.24.96.0/20

allow from 217.25.96.0/20

allow from 217.30.176.0/20

allow from 217.64.32.0/20

allow from 217.64.176.0/20

allow from 217.69.48.0/20

allow from 217.71.144.0/20

allow from 217.77.192.0/20

allow from 217.78.192.0/20

allow from 217.78.208.0/20

allow from 217.112.192.0/20

allow from 217.112.240.0/20

allow from 217.116.160.0/20

allow from 217.119.32.0/20

allow from 217.140.128.0/17

allow from 217.149.48.0/20

allow from 217.152.0.0/16

allow from 217.169.64.0/20

deny from all

</Limit>

Kaikki nämä lisäturvaa antavat muutokset eivät ole pakollisia, mutta auttavat pitämään asennuksen puhtaana.

WordPress graafikoille: Osa2 – asennus ja tietoturva

Asennus

Jätä kommentti

Yhteystiedot

Ota yhteyttä

Löyly!